Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-12-2013 03
Ran by ilpof at 2013-12-09 16:16:13 Run:1
Running from C:\Users\ilpof\Desktop\tttt
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [738496 2013-10-18] ()
AppInit_DLLs: C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll [ ] ()
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?ctid=CT3314759&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP731F41A0-32FC-4FEA-A996-2F2FBA7E2606&SSPV=
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0Bzzzzzz0EtAyC0Fzz0CtBtCyD0AzztBtN0D0Tzu0CyBtDzztN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1935373293&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0Bzzzzzz0EtAyC0Fzz0CtBtCyD0AzztBtN0D0Tzu0CyBtDzztN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1935373293&ir=
SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0Bzzzzzz0EtAyC0Fzz0CtBtCyD0AzztBtN0D0Tzu0CyBtDzztN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1935373293&ir=
SearchScopes: HKLM - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0Bzzzzzz0EtAyC0Fzz0CtBtCyD0AzztBtN0D0Tzu0CyBtDzztN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1935373293&ir=
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=887&systemid=406&v=n8811-84&apn_uid=7427014079124342&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=887&systemid=406&v=n8811-84&apn_uid=7427014079124342&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/Results.aspx?ctid=CT3314759&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP731F41A0-32FC-4FEA-A996-2F2FBA7E2606&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/Results.aspx?ctid=CT3314759&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP731F41A0-32FC-4FEA-A996-2F2FBA7E2606&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=96F074E543B83EF0&affID=119357&tsp=4984
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=887&systemid=406&v=n8811-84&apn_uid=7427014079124342&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
SearchScopes: HKCU - {F03AD3C4-CB37-459F-887C-C7A127BD2E04} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=62758BA2-A25E-4028-BD70-BA90B1837B3D&apn_sauid=C2C8913D-B987-4AD0-B2EC-64DA2AEB84FF
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\karrot\AppData\Local\mysearchdial-speeddial.crx
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\ilpof\AppData\Local\Torch\Plugins\TorchPlugin.crx
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx
CHR HKLM-x32\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\karrot\AppData\Local\mysearchdial-speeddial.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Task: {02066CA7-3158-49B9-9826-FC28E7ACB50B} - System32\Tasks\DigitalSite => C:\Users\ilpof\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE
Task: {9DD55984-8E02-483A-A7DB-96A056E85004} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP\{3405DC9C-79D5-4412-A993-C5EABA4DE665}.exe
Task: {D0464836-D1A0-4D36-830C-0499EAC159C4} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv => C:\Windows\TEMP\{B8FEFE84-E373-4EF7-AB91-A0C749F080E4}.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => C:\Windows\TEMP\{B8FEFE84-E373-4EF7-AB91-A0C749F080E4}.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{3405DC9C-79D5-4412-A993-C5EABA4DE665}.exe
Task: C:\Windows\Tasks\DigitalSite.job => C:\Users\ilpof\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 nvUpdatusService;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
C:\Windows\system32\roboot64.exe
C:\ProgramData\BonanzaDealsLive
C:\Program Files (x86)\BonanzaDeals
C:\Program Files (x86)\BonanzaDealsLive
C:\Program Files (x86)\Mobogenie
C:\Program Files (x86)\MyPC Backup
C:\Program Files (x86)\mozilla firefox\searchplugins\Ask.xml
C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml
C:\Users\Public\AlexaNSISPlugin.3824.dll
C:\Users\ilpof\AppData\Roaming\2V2Z1C1P1H1P1Q1F2W1G1I1F1T1QtAtB
C:\Users\ilpof\AppData\Roaming\Babylon
C:\Users\ilpof\AppData\Roaming\DigitalSite
C:\Users\ilpof\AppData\Roaming\Systweak
C:\Users\ilpof\AppData\Roaming\Uhis
C:\Users\ilpof\AppData\Roaming\Wely
C:\Users\ilpof\Downloads\Niepotwierdzony 964282.crdownload
C:\Users\ilpof\Downloads\dffsetup-qtcore4.exe
C:\Users\karrot\daemonprocess.txt
C:\Users\karrot\Documents\Mobogenie
C:\Users\karrot\AppData\Local\BonanzaDealsLive
C:\Users\karrot\AppData\Local\cache
C:\Users\karrot\AppData\Local\Mobogenie
C:\Users\karrot\AppData\Roaming\Systweak
C:\Users\wangzhisong
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key deleted successfully.
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => Key deleted successfully.
HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key deleted successfully.
HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key deleted successfully.
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F03AD3C4-CB37-459F-887C-C7A127BD2E04} => Key deleted successfully.
HKCR\CLSID\{F03AD3C4-CB37-459F-887C-C7A127BD2E04} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{ae07101b-46d4-4a98-af68-0333ea26e113} => Value deleted successfully.
HKCR\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{ae07101b-46d4-4a98-af68-0333ea26e113} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff => Key deleted successfully.
C:\Users\karrot\AppData\Local\mysearchdial-speeddial.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof => Key deleted successfully.
"C:\Users\ilpof\AppData\Local\Torch\Plugins\TorchPlugin.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam => Key deleted successfully.
C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff => Key deleted successfully.
"C:\Users\karrot\AppData\Local\mysearchdial-speeddial.crx" => File/Directory not found.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02066CA7-3158-49B9-9826-FC28E7ACB50B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02066CA7-3158-49B9-9826-FC28E7ACB50B} => Key deleted successfully.
C:\Windows\System32\Tasks\DigitalSite => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DigitalSite => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9DD55984-8E02-483A-A7DB-96A056E85004} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DD55984-8E02-483A-A7DB-96A056E85004} => Key deleted successfully.
C:\Windows\System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG-Secure-Search-Update_JUNE2013_TB_rmv => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D0464836-D1A0-4D36-830C-0499EAC159C4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0464836-D1A0-4D36-830C-0499EAC159C4} => Key deleted successfully.
C:\Windows\System32\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG-Secure-Search-Update_JUNE2013_HP_rmv => Key deleted successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => Moved successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => Moved successfully.
C:\Windows\Tasks\DigitalSite.job => Moved successfully.
BcmSqlStartupSvc => Service deleted successfully.
CLKMSVC10_3A60B698 => Service deleted successfully.
CLKMSVC10_C3B3B687 => Service deleted successfully.
DriverService => Service deleted successfully.
iATAgentService => Service deleted successfully.
idealife Update Service => Service deleted successfully.
IGRS => Service deleted successfully.
IviRegMgr => Service deleted successfully.
nvUpdatusService => Service deleted successfully.
Oasis2Service => Service deleted successfully.
PCCarerService => Service deleted successfully.
ReadyComm.DirectRouter => Service deleted successfully.
RichVideo => Service deleted successfully.
RtLedService => Service deleted successfully.
SeaPort => Service deleted successfully.
SoftwareService => Service deleted successfully.
SQLWriter => Service deleted successfully.
C:\Windows\system32\roboot64.exe => Moved successfully.
C:\ProgramData\BonanzaDealsLive => Moved successfully.
C:\Program Files (x86)\BonanzaDeals => Moved successfully.
C:\Program Files (x86)\BonanzaDealsLive => Moved successfully.
C:\Program Files (x86)\Mobogenie => Moved successfully.
C:\Program Files (x86)\MyPC Backup => Moved successfully.
C:\Program Files (x86)\mozilla firefox\searchplugins\Ask.xml => Moved successfully.
C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml => Moved successfully.
C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml => Moved successfully.
C:\Users\Public\AlexaNSISPlugin.3824.dll => Moved successfully.
C:\Users\ilpof\AppData\Roaming\2V2Z1C1P1H1P1Q1F2W1G1I1F1T1QtAtB => Moved successfully.
C:\Users\ilpof\AppData\Roaming\Babylon => Moved successfully.

"C:\Users\ilpof\AppData\Roaming\DigitalSite" directory move:

C:\Users\ilpof\AppData\Roaming\DigitalSite\UpdateProc\config.dat => Moved successfully.
C:\Users\ilpof\AppData\Roaming\DigitalSite\UpdateProc\prod.dat => Moved successfully.
C:\Users\ilpof\AppData\Roaming\DigitalSite\UpdateProc\STTL.DAT => Moved successfully.
C:\Users\ilpof\AppData\Roaming\DigitalSite\UpdateProc\TTL.DAT => Moved successfully.
Could not move "C:\Users\ilpof\AppData\Roaming\DigitalSite" directory. => Scheduled to move on reboot.

C:\Users\ilpof\AppData\Roaming\Systweak => Moved successfully.
C:\Users\ilpof\AppData\Roaming\Uhis => Moved successfully.
C:\Users\ilpof\AppData\Roaming\Wely => Moved successfully.
C:\Users\ilpof\Downloads\Niepotwierdzony 964282.crdownload => Moved successfully.
C:\Users\ilpof\Downloads\dffsetup-qtcore4.exe => Moved successfully.
C:\Users\karrot\daemonprocess.txt => Moved successfully.
C:\Users\karrot\Documents\Mobogenie => Moved successfully.
C:\Users\karrot\AppData\Local\BonanzaDealsLive => Moved successfully.
C:\Users\karrot\AppData\Local\cache => Moved successfully.
C:\Users\karrot\AppData\Local\Mobogenie => Moved successfully.
C:\Users\karrot\AppData\Roaming\Systweak => Moved successfully.
C:\Users\wangzhisong => Moved successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2013-12-09 16:18:12)<=

C:\Users\ilpof\AppData\Roaming\DigitalSite => Is moved successfully.

==== End of Fixlog ====